Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
Electron_Cracked_V3.zip
-
Size
36.4MB
-
Sample
231208-dn95lsgh54
-
MD5
f4dcd3bffcc6cb6f0fc03461fd90cec6
-
SHA1
661d96656d383765e0d2c656128efbc5fbdf0ee7
-
SHA256
6e5f4e02cbc149a454d363c1c0934543c57fc8c519040c11441dcd601eebc547
-
SHA512
96505c41c4feb0d8bcec43767877ee03d2bf38e51313dccfb1c34070f90d6992619ffe336f7e981c259886eb83239fa5019dc2bff334cd57c610ab4cade74656
-
SSDEEP
786432:xflFDzZNQpx0/Hpd6LPGzflFDzZNQpx0/Hpd6LPGL:BlFHZNQP0vpdEGzlFHZNQP0vpdEGL
Behavioral task
behavioral1
Sample
Electron_Cracked_V3/Particle.exe
Resource
win7-20231023-en
Behavioral task
behavioral2
Sample
Electron_Cracked_V3/Particle.exe
Resource
win10v2004-20231130-en
Malware Config
Targets
-
-
Target
Electron_Cracked_V3/Particle.exe
-
Size
18.4MB
-
MD5
5034635dbc641bc6af5cf3f950eb4ca0
-
SHA1
480ed67e33136f6a7bf329b1b0df6717f958a072
-
SHA256
e199cd8a6297d6846f6e2a5a3e8e2450c3c6a9138ab18dc098a34a16bb107bb2
-
SHA512
f54c72f27af038beb00be4395158fec30973893b6a00e4e822cc29ee01df07148c1180fa94d56902288c1f75fdf205dcd5e2841da5151ea4fea789523fa29fc3
-
SSDEEP
393216:+qPnLFXlrPYgQpDOETgs77fGWg/fxs82vEmiQVFFL2:zPLFXNPRQoE7tafukEVFJ
Score8/10-
Downloads MZ/PE file
-
Executes dropped EXE
-
Loads dropped DLL
-
Registers COM server for autorun
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Legitimate hosting services abused for malware hosting/C2
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-